Skip to Content
Find More Like This
Return to Search

Real-time detection and classification of anomalous events in streaming data

United States Patent

April 19, 2016
View the Complete Patent at the US Patent & Trademark Office
Oak Ridge National Laboratory - Visit the Partnerships Directorate Website
A system is described for receiving a stream of events and scoring the events based on anomalousness and maliciousness (or other classification). The events can be displayed to a user in user-defined groupings in an animated fashion. The system can include a plurality of anomaly detectors that together implement an algorithm to identify low probability events and detect atypical traffic patterns. The atypical traffic patterns can then be classified as being of interest or not. In one particular example, in a network environment, the classification can be whether the network traffic is malicious or not.
Ferragut; Erik M. (Oak RIdge, TN), Goodall; John R. (Knoxville, TN), Iannacone; Michael D. (Knoxville, TN), Laska; Jason A. (Knoxville, TN), Harrison; Lane T. (Boston, MA)
UT-Battelle, LLC (Oak Ridge, TN)
14/ 053,248
October 14, 2013
ACKNOWLEDGMENT OF GOVERNMENT SUPPORT This invention was made with government support under Contract No. DE-ACO5-00OR22725 awarded by the U.S. Department of Energy. The government has certain rights in the invention.